1. Home
  2. CVE Database
  3. CVE-2021-45499
HIGH · 8.2

CVE-2021-45499

Certain NETGEAR devices are affected by authentication bypass. This affects R6900P before 1.3.3.140, R7000P before 1.3.3.140, R7900P before 1.4.2.84, R7960P before 1.4.2.84, R8000P before 1.4.2.84, RA...

Vulnerability Description

Certain NETGEAR devices are affected by authentication bypass. This affects R6900P before 1.3.3.140, R7000P before 1.3.3.140, R7900P before 1.4.2.84, R7960P before 1.4.2.84, R8000P before 1.4.2.84, RAX75 before 1.0.3.106, and RAX80 before 1.0.3.106.

CVSS Score

8.2

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
NONE

Affected Products

VendorProductVersions
NetgearR6900P Firmware< 1.3.3.140
NetgearR6900P-
NetgearR7000P Firmware< 1.3.3.140
NetgearR7000P-
NetgearR7900P Firmware< 1.4.2.84
NetgearR7900P-
NetgearR7960P Firmware< 1.4.2.84
NetgearR7960P-
NetgearR8000P Firmware< 1.4.2.84
NetgearR8000P-
NetgearRax75 Firmware< 1.0.3.106
NetgearRax75-
NetgearRax80 Firmware< 1.0.3.106
NetgearRax80-

References

FAQ

What is CVE-2021-45499?

CVE-2021-45499 is a vulnerability with a CVSS score of 8.2 (HIGH). Certain NETGEAR devices are affected by authentication bypass. This affects R6900P before 1.3.3.140, R7000P before 1.3.3.140, R7900P before 1.4.2.84, R7960P before 1.4.2.84, R8000P before 1.4.2.84, RA...

How severe is CVE-2021-45499?

CVE-2021-45499 has been rated HIGH with a CVSS base score of 8.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-45499?

Check the references section above for vendor advisories and patch information. Affected products include: Netgear R6900P Firmware, Netgear R6900P, Netgear R7000P Firmware, Netgear R7000P, Netgear R7900P Firmware.